@Morteza Yahoo
I understand you have an Azure policy which is preventing changes being made to your Batch pool. You want to know what IP addresses/ports are required. Please correct me if I am misunderstanding. By default the Batch NSG is configured with TCP port 22 or TCP 3389 open to permit remote access. You can use your own custom NSG and port 22 and port 3389 are not required. Please see the required ports in this section.
Hope this helps! Let me know if you are still facing issues or have further question.
-------------------------------
Please don’t forget to "Accept the answer" and “up-vote” wherever the information provided helps you, this can be beneficial to other community members.